Overview

overview

7

Static

static

3

da23925d3b...18.exe

windows7-x64

7

da23925d3b...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    da23925d3b9fe39eca05cf4ae1975c39_JaffaCakes118

  • Size

    433KB

  • Sample

    240911-mee3jswbpe

  • MD5

    da23925d3b9fe39eca05cf4ae1975c39

  • SHA1

    33972ff98033eb2b6b1870aa539556ca1fd7d118

  • SHA256

    3407c859d2dd481f17a79688a81fdc6405ad3c05803ac2b6253953225f5717bf

  • SHA512

    35db945a2c60cf51aa20ce59e7a54539b6393a999e5bc5c5081faa551ee3b983f22badf02f31e89321b75af7ed1786253438ac44eb1dca24d651f6c1f28ee183

  • SSDEEP

    6144:xVkomV8wQYuNElNxPsBWh19OQ8sSxDD8morgZxCfFdCOhXaKGgUoPayKdCrjxccM:YxJQTqxPuWhR4xnPzCfCSKJgjPSdSOr

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      da23925d3b9fe39eca05cf4ae1975c39_JaffaCakes118

    • Size

      433KB

    • MD5

      da23925d3b9fe39eca05cf4ae1975c39

    • SHA1

      33972ff98033eb2b6b1870aa539556ca1fd7d118

    • SHA256

      3407c859d2dd481f17a79688a81fdc6405ad3c05803ac2b6253953225f5717bf

    • SHA512

      35db945a2c60cf51aa20ce59e7a54539b6393a999e5bc5c5081faa551ee3b983f22badf02f31e89321b75af7ed1786253438ac44eb1dca24d651f6c1f28ee183

    • SSDEEP

      6144:xVkomV8wQYuNElNxPsBWh19OQ8sSxDD8morgZxCfFdCOhXaKGgUoPayKdCrjxccM:YxJQTqxPuWhR4xnPzCfCSKJgjPSdSOr

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks